Per this thread:
Convenience 'pass through' setter methods will be removed, as they add complexity, verbosity and are awkward to maintain. Clean configuration can still be done in a number of ways, especially via property path expressions in .ini:
securityManager.authenticator.authenticationStrategy = $myAuthenticationStrategy
or via a Builder or in Spring environments, possibly a SecurityManagerFactoryBean or similar.